G3_HardCode_vuln

Overview

Product: Tenda G3 V15.01.0.5(2848_755)_EN
Hardware Version: V15.01.0.5(2848_755)_EN
Manufacturer's website information
- https://www.tendacn.com/
Firmware download website:
- https://www.tendacn.com/hk/download/detail-3201.html

Affected version

V15.01.0.5(2848_755)_EN

Vulnerability description

Tenda G3 V15.01.0.5 was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root.

Additional Information

###Product_version
**G3 
V15.01.0.5(2848_755)_EN**

###Affected_component
/etc_ro/shadow

###Attack_vector
The root password obtained from /etc_ro/shadow can be used for unauthorized root login.

###Discription
Tenda **G3** Firmware **G3 V15.01.0.5(2848_755)_EN** was discovered to contain a hardcoded password vulnerability in /etc_ro/shadow, which allows attackers to log in as root

###Refernce
<https://colorful-meadow-5b9.notion.site/G3_HardCode_vuln-6b5ae19473b745d7abe5e01b4529caf8?pvs=4>
<https://www.tendacn.com/hk/download/detail-3201.html>

after decrypt the passwd we got Fireitup